Yellow or red lock icon in Google Chrome when accessing SonicWall management or SSL-VPN page
When accessing the SonicWall management GUI or the SSL-VPN page using Google Chrome, a yellow or red lock icon is displayed. Although there would be no errors when accessing such pages, clicking on the lock icon would have the following messages:
"The site is using outdated security settings that may prevent future versions of Chrome from being able to safely access it."
"This site uses a weak security configuration (SHA-1 signatures), so your connection may not be private."
“Your connection to example.com is encrypted with obsolete cryptography.”
Resolution or Workaround:
These errors are specific to Chrome and are due to Chrome's gradual deprecation of the SHA1 hashing algorithm and certain cipher suites.
If a certificate in a chain expires in 2017 or later and the chain contains a SHA-1 signature, the page will show a red icon. This is the case with SonicWall management, SSL-VPN and Client DPI-SSL certificates. These certificates expire post 2017.
If a certificate in a chain expires in 2016 and the chain contains a SHA-1 signature, the page will show a yellow icon.